Which of the following action items should a security analyst perform FIRST to prevent this from occurring again?

SY0-601 V3 0 Comments

During a recent incident an external attacker was able to exploit an SMB vulnerability over the internet.

Which of the following action items should a security analyst perform FIRST to prevent this from occurring again?
A . Check for any recent SMB CVEs
B. Install AV on the affected server
C. Block unneeded TCP 445 connections
D. Deploy a NIDS in the affected subnet

Answer: C

Latest SY0-601 Dumps Valid Version with 396 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SY0-601 PDF     SY0-601 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments